Reposted from here! Thank you!
Berkeley Internert Name Domain (bind) is a domain name software we are well known. It has a wide range of use, and most DNS servers on the Internet are based on this software. Bind is currently maintained by ISC (Internet Software Consortium), which is done by Nominum (www.nominum.com). The set of this common problem completed below is the company (http://www.isc.org/)
1) Where can I find Bind? Bind released in the format of the source code. The current version is BIND 9, but bind8.2.2-p5 is still a widely released version. Considering the security issues of earlier versions, if you are still running earlier than 8.2.2-P5, then we strongly recommend you to upgrade the software. Source code can also be obtained from here.
2) How to install BIND? Download the source code to an empty directory. If you need it, you can download the document and bundled packages. Next, you need to decompress the package (Untar) packet released. Gunzip
3) Where is the NT-based bind? The latest NT-based Bind can be from ftp://ftp.isc.org/isc/bind/src/8.2.2-p5/bind-src.tar.gz 8.2. It is found in the 2P5 source code. You should be able to use WinZip to extract / unpack 8.2.2.2p5 files. Once the source code is decompressed, you will find the NT transplant program in the SRC / Port / Winnt directory. You need Visual C 6.0 to compile it. 4) Where can I find information about BIND? Start with http://www.isc.org/. For Bind users, there is a list of available mailing. Use the form subscription on http://www.isc.org/services/public/lists/bind-lists.html. Before you submit your questions to the mailing list, please check the files of the mailing list to see if your problem has already answered. Searching Bind-User Mail List This file is located at http://www.isc.org/ml-archives/bind-users/. Bind-users mailing list points to the metrophic Setnet News Group Comp.Protocols.dns.bin. You can search for the newsgroup at http://www.deja.com/. bind "Bible" is the DNS and bind, Third Edition, Author: Paul Albitz and Cricket Liu.
5) Why should I upgrade bind to the latest version? The latest Bind release solves the bugs and / or security vulnerabilities found in previous versions. 6) What version I am using is BIND? There are several ways to determine what version of Bind you are using. Note that some are for a specific operating system, while others cannot work on a Bind version earlier than 4.9.5. We will indicate these restrictions in the description below. ● The simplest way to inform the version number is to find the message written in the system log file when Named starts. For example: Jul 14 12:54:21 ns named [15677]: starting. Named 8.2.2-p5 jul 14 12:54:21 href = "mailto: hostmaster@ns1.nominum.com: / usr / sbin / named" > hostmaster@ns1.nominum.com: / usr / sbin / named ● Named with "-v" Switch Display version: # named -v named 8.2.2-p5 THU JUL 20 17:19:57 PDT 2000 href = " Mailto: Hostmaster@ns1.nominum.com: / usr / sbin / named> Hostmaster@ns1.nominum.com: / usr / sbin / named ● When using the updated version of Bind, Bind's Name Backstage Daemon Control Interface The program can provide version information: NDC Status ● The "What" command of the Source Code Control System (SCSS) provides the logical information of the file. What / named The following command will work when it is checked on the server running BIND 4.9.5 and above. Both programs include in the release of Bind. ● nslookup # nslookup Default Server: ns.yourco.bogus Address: 333.333.333.333> set class = chaos> set type = txt> version.bind Server: ns.yourco.bogus Address: 333.333.333.333 VERSION.bind text = "8.2 .2-p5 "● DIG DIG VERSION.BIND TXT Chaos @ Server Name or Dig @ Server Name Txt Chaos Version.bind 7) I got an error message: No Default TTL Set Using SOA minimuminstead. Why is this? How to do? Starting with BIND 8.2, you need a $ TTL instruction to set the default TTL of the domain. A '$ TTLXXXXXX' indication can be added before the domain SOA record. (XXXXXX represents the default TTL that calculates to second.)
8) What valid characters can be used hostname? The host name can include letters, numbers, and hyphens, but cannot begin with even characters. Underline (_) is not valid in the host name? The service package can allow the underscore to appear in the host name, but most of them are not. Using a domain or host name with underscore or host names, the name server on most Internet cannot identify the relevant host / IP address.
9) Why is the answer when I use nslookup on a host in this domain? This usually occurs when there is an error in the zone file. Check the system log file 'Messages' to verify the error.
10) I have modified my own domain, but this change is not seen in other places on the Internet. Why? Whenever you modify your domain file, for example, when you add or modify the host record, you must update the domain's SOA record, because the name server needs to know when you retrieve information from your server. If you have been updated if you have been queried from the last query. For example:; foo.com. $ TTL 14400 @ in SOA Someplace.foo.com. Admin.foo.com. (1; this file's version - change 43200; refresh TWICE A day 1800; RETRY REFRESH EVERY 15 Minutes 604800; Expire After 1000 Hours (Over Week) 259200); Minimum TTL of 3 Day is obvious, rows with 'file's version' are we want to modify. Version serial number can be any number; 1, 2, 3, 4 or 2001, 2002, 2003, and the like. The only limit is that the version number cannot be more than 10 digits. In this example, if you make changes to the domain file, you need to change the version number to '2'. 11) Why is there no IP address? There is no name server record in /etc/resolv.conf. 12) What is the "Lame Server" error in my log file? "Lame Server" refers to a server that cannot be confident that it has a domain authorization. If you have Lame Server, or authorize the domain of Lame Server, then "Lame Server" message is useful. If you prefer "Lameserver" messages, you can use the logging statement to discard them: logging {category lame-servers {null;};}; 13) What is the relationship between Microsoft Windows 2000 and Bind? Bind will check all records by default to ensure that host names are used only where the host name is required, which prevents unexpected consistency problems. Microsoft Windows 2000 uses a dynamic directory data that is called "_MSDCS". Although this sub-domain does not generate inconsistency with the legal hostname, it also makes it possible to make illegal hostnames stored in the subdomain. The use of this host name is refused by bind. Dynamic directory hopes that there is "global catalog" in _msdcs (for example, gc._msdcs.example.com), which is refused by default. To understand this issue, we recommend dynamic directory set to stand-alone domain (for example, "_ msdcs.example.com") and configured to do not check the illegal host name. This should be reasonable because the Window 2000 server creates this data and should not cause inconsistency with other Windows 2000 machines that wish to access them. For example, zone "_msdcs.example.com" {type master; file "_msdcs.example.db"; check-name ignore; allow-update {localnets;};
14) What is TSIG KEY? TSIG Key provides a method of authenticating and verifying the exchange of DNS data validity, which uses a key between the parser and the server or between the two servers. 15) How do I use TSIG KEY to dynamically update my DNS? First you need to generate a TSIG key using the following command (we will use TSIG-Key as a key file name): DNSKeygen -h 128 -h -n Tsig-key . This generates a pair of key files: 'ktsig-key. 157 00000.Key', this is an ASCII file, which includes the following line: Tsig-key. In Key 513 3 157 awwlotrfpge rrkf2 deiw == and 'Kvip-key. 157 00000.Private', including: private-key-format: v1.2 algorithm: 157 (hma) key: awwlotrfpge rrkf2 deiw == you will need to get Base64 encoded key awwlotrfpge RRKF2 DEIW == and use it in configuring your server naming settings. For example: key tsig-key. {Algorithm HMAC-MD5; Secret "AWLOTRFPGE RRKF2 DEIW ==";}; zone "DDNS.DREGIS.com" {... allow-update {key tsig-key. Remember to restart NAMED after this. Then, you need to copy these two key files to a certain location of the client system (for example, using / var / named / tsig). Last nsupdate -k / var / named / tsig: Tsig-key. 16) What is the 'Forwarder' option in Named.conf? The Forwarder line tells the server to forward all queries because it is not authorized or buffered to another domain name server.
